diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..b25c15b
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+*~
diff --git a/docker-compose.yml b/docker-compose.yml
new file mode 100644
index 0000000..87b23fc
--- /dev/null
+++ b/docker-compose.yml
@@ -0,0 +1,14 @@
+services:
+  fullrss:
+    build: .
+    volumes:
+      - /tmp:/tmp
+    networks:
+      - www
+    container_name: fullrss
+    restart: unless-stopped
+
+networks:
+  www: 
+    name: www
+    external: true
diff --git a/nginx-conf b/nginx-conf
new file mode 100644
index 0000000..d79ed45
--- /dev/null
+++ b/nginx-conf
@@ -0,0 +1,43 @@
+server
+{
+  listen 80;
+  listen [::]:80;
+  server_name fullrss.alfter.us;
+  return 301 https://$server_name$request_uri;
+}
+
+server 
+{ 
+  listen 443 ssl; 
+  listen [::]:443 ssl;
+  server_name fullrss.alfter.us; 
+  include /etc/nginx/conf.d/ssl.inc;
+  root /var/www/fullrss; 
+
+  index fullrss.php; 
+
+  # add_header X-Frame-Options "SAMEORIGIN" always;
+  # add_header X-XSS-Protection "1; mode=block" always;
+  # add_header X-Content-Type-Options "nosniff" always;
+  # add_header Referrer-Policy "no-referrer-when-downgrade" always;
+  # add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
+  # add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
+  # enable strict transport security only if you understand the implications
+
+  location ~ [^/]\.php(/|$) 
+  { 
+    fastcgi_split_path_info ^(.+?\.php)(/.*)$;
+    if (!-f $document_root$fastcgi_script_name) 
+    {
+      return 404;
+    }
+
+    include fastcgi_params;
+    fastcgi_param SCRIPT_FILENAME /var/www/html$fastcgi_script_name;
+    fastcgi_param PATH_INFO       $fastcgi_path_info;
+    fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info;
+
+    fastcgi_pass   fullrss:9000;
+    fastcgi_index  index.php; 
+  } 
+}